ee52d8834cce35ee8287c44108bd9f6fca35dc7ffa15ec2b699e254c1818ee18

Sharing

Copy URL

Twitter E-mail

General

Target

ee52d8834cce35ee8287c44108bd9f6fca35dc7ffa15ec2b699e254c1818ee18
Size

327KB
MD5

563b4facf097bc6dd6dcc324a53c6bde
SHA1

907d326273ab610f66181ebfdbe90be8050eb651
SHA256

ee52d8834cce35ee8287c44108bd9f6fca35dc7ffa15ec2b699e254c1818ee18
SHA512

f23ad36ef5371aacd16738e827371cb793893c8b47483e78515d92f26d2e3d11a4c8749db0cf8b4f12b5b2c614f6fe73bf20cc6c1189088f760144ab5d6a6ff7
SSDEEP

6144:DlfKUCYaoVuZ9oHg/Bn8vjKHyF3Zsh2ncnsMNOIiXQfEotuLb:DAQaoU/oHg/BwjKHyFq2cnsW3Tk

Score

N/A

Malware Config

Signatures

Files

ee52d8834cce35ee8287c44108bd9f6fca35dc7ffa15ec2b699e254c1818ee18
.exe windows x86

3b1460c086d18e8083905953059d9e3d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetNamedPipeHandleStateW
CreateIoCompletionPort
FillConsoleOutputCharacterW
SetThreadAffinityMask
GetExitCodeProcess
GetCurrentProcessId
GetVersionExA
EnumDateFormatsExW
FindNextFileW
CopyFileExW
BuildCommDCBAndTimeoutsA
DebugSetProcessKillOnExit
WriteProfileStringW
WritePrivateProfileStructA
FindFirstChangeNotificationA
MapViewOfFileEx
CreateTimerQueue
FindNextVolumeMountPointA
SetVolumeMountPointA
GetWriteWatch
ReadConsoleInputA
SetComputerNameExW
GetTimeZoneInformation
GetSystemDirectoryA
GetDriveTypeW
LoadLibraryA
GlobalAlloc
VerifyVersionInfoW
GetBinaryTypeA
ReleaseActCtx
InterlockedExchangeAdd
FormatMessageW
SetDllDirectoryA
WritePrivateProfileStringA
GetConsoleAliasesLengthW
GetProcessHeaps
OpenWaitableTimerW
UnlockFile
InterlockedIncrement
GetStartupInfoW
GetSystemWow64DirectoryW
SetLastError
GetConsoleAliasExesW
WaitForDebugEvent
EndUpdateResourceW
GetLastError
GetSystemTime
SetDefaultCommConfigW
VirtualFree
GlobalUnfix
GetSystemWindowsDirectoryW
CopyFileA
TerminateThread
GetACP
FindAtomA
HeapUnlock
GetMailslotInfo
EnterCriticalSection
GetConsoleAliasW
_lwrite
GetOverlappedResult
CreateNamedPipeA
InterlockedDecrement
SetSystemTimeAdjustment
DefineDosDeviceW
GetAtomNameW
SetConsoleScreenBufferSize
EnumResourceTypesA
lstrlenW
LoadLibraryW
WriteConsoleA
VirtualProtect
GetModuleHandleW
ReadConsoleOutputA
GetThreadContext
BuildCommDCBW
AddRefActCtx
GetStringTypeW
WritePrivateProfileStringW
GetFileAttributesW
GetVolumePathNameA
MoveFileA
GetCommMask
CloseHandle
EndUpdateResourceA
GetNamedPipeInfo
AttachConsole
GlobalGetAtomNameW
SetComputerNameA
GetConsoleAliasesA
WriteConsoleInputW
CreateMailslotW
TzSpecificLocalTimeToSystemTime
SetLocalTime
GetStringTypeA
EnumSystemLocalesW
CallNamedPipeA
GetConsoleAliasExesLengthW
CopyFileExA
GetPrivateProfileIntA
GetModuleHandleExW
FindActCtxSectionStringA
GetTickCount
OpenWaitableTimerA
GlobalWire
FillConsoleOutputCharacterA
GetCompressedFileSizeW
SetThreadPriority
FreeUserPhysicalPages
WriteConsoleOutputCharacterW
EnumDateFormatsA
TerminateJobObject
CreateFileW
GetDateFormatA
CreateActCtxA
FindNextVolumeA
Sleep
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
RaiseException
RtlUnwind
WideCharToMultiByte
HeapValidate
IsBadReadPtr
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleFileNameW
TerminateProcess
GetCurrentProcess
IsDebuggerPresent
GetProcAddress
TlsGetValue
TlsAlloc
TlsSetValue
GetCurrentThreadId
TlsFree
GetOEMCP
GetCPInfo
IsValidCodePage
SetStdHandle
GetFileType
WriteFile
GetConsoleCP
GetConsoleMode
SetHandleCount
GetStdHandle
GetStartupInfoA
QueryPerformanceCounter
GetSystemTimeAsFileTime
ExitProcess
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
HeapDestroy
HeapCreate
HeapFree
GetModuleFileNameA
HeapAlloc
HeapSize
HeapReAlloc
VirtualAlloc
FlushFileBuffers
DebugBreak
OutputDebugStringA
WriteConsoleW
OutputDebugStringW
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
GetLocaleInfoA
LCMapStringA
LCMapStringW
GetConsoleOutputCP
SetFilePointer
CreateFileA

advapi32

ImpersonateSelf

Sections

.text
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 132KB - Virtual size: 384KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3b1460c086d18e8083905953059d9e3d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

advapi32

Sections

.text Size: 157KB - Virtual size: 156KB

.data Size: 132KB - Virtual size: 384KB

.rsrc Size: 37KB - Virtual size: 36KB

.text
Size: 157KB - Virtual size: 156KB

.data
Size: 132KB - Virtual size: 384KB

.rsrc
Size: 37KB - Virtual size: 36KB